Manager, Governance, Risk, Compliance, Privacy

Data Analysis Incorporated

Manager for Governance, Risk, Compliance & Privacy at Data Analysis Inc., leading security and compliance initiatives across multiple business sectors.

Posted 6/9/2026full-time🇺🇸 United StatesMid-LevelSeniorWebsite

Tech Stack

Tools & technologies

Cyber Security

About the role

Key responsibilities & impact

Lead the implementation and continuous improvement of governance frameworks, policies, standards, procedures, and controls related to information security, privacy, and technology compliance.
Manage cybersecurity, operational risk, and third-party risk management activities including risk identification, assessment, remediation tracking, and executive reporting.
Lead compliance initiatives supporting regulatory, contractual, and industry requirements, including audit coordination, evidence collection, remediation tracking, and certification readiness efforts.
Direct privacy and data protection activities including privacy impact assessments (PIAs/DPIAs), privacy risk assessments, privacy incident coordination, and data subject request support.
Facilitate governance reviews, compliance meetings, and cross-functional initiatives to ensure accountability and timely remediation of identified risks and compliance gaps.
Develop, maintain, and report metrics related to governance, risk, compliance, privacy, audits, control effectiveness, remediation activities, and program maturity.
Partner with business and technical teams to integrate security, privacy, and compliance requirements into operational and technology processes using privacy-by-design and security-by-design principles.
Lead enterprise-wide security and privacy awareness initiatives, training programs, communications, and guidance to promote a culture of compliance, accountability, and secure business operations.
Support governance activities associated with incident response, business continuity, disaster recovery, crisis management, and operational resilience programs.
Monitor evolving regulatory, privacy, and security requirements and evaluate impacts to organizational policies, controls, and business operations.

Requirements

What you’ll need

Bachelor’s degree in Information Security, Cybersecurity, Information Technology, Business, Risk Management, or related field.
Minimum 5–7 years of experience in Governance, Risk, Compliance (GRC), Privacy, Information Security, Audit, or related disciplines.
Experience leading or managing governance, compliance, privacy, audit, or risk management programs within complex organizations.
Experience supporting internal and external audits, assessments, and compliance initiatives involving security and privacy controls.
Experience collaborating across technical and business teams to drive governance and compliance initiatives.
Master’s degree in a related field (preferred).
CISM (Certified Information Security Manager) (preferred).
CRISC (Certified in Risk and Information Systems Control) (preferred).
CISA (Certified Information Systems Auditor) (preferred).
CISSP (Certified Information Systems Security Professional) (preferred).
ISO 27001 Lead Implementer or Lead Auditor (preferred).
CDPSE, CIPM, CIPT, or other privacy-related certifications (preferred).
Experience supporting international privacy and regulatory compliance requirements (preferred).

Benefits

Comp & perks

Equal Opportunity Employer

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

Governance frameworksRisk managementCybersecurityCompliance initiativesPrivacy impact assessmentsData protectionAudit coordinationRemediation trackingMetrics developmentIncident response

Soft Skills

LeadershipCollaborationCommunicationAccountabilityTrainingFacilitationCross-functional teamworkProblem-solvingOrganizational skillsCrisis management

Certifications

CISMCRISCCISACISSPISO 27001 Lead ImplementerISO 27001 Lead AuditorCDPSECIPMCIPT